Find out the IP addresses of systems from where API Portal is being logged in.
Release : 4.5, 5.1
Component : API PORTAL
The login info is in audit log, but it doesn't include the client IP.
1. check Audit log, and find the timestamp of the user login,
2. dump the log of portal_dispatcher container,
docker service logs portal_dispatcher > disp.log 2>&1
3. search into the output file (disp.log) with keyword "api/apim/authenticate/login"
for example, if you find the message like this,
[email protected] | [fce1f5a1a42f,9004876fc0e887a002 0716abb207790d,9004876fc0e887a0] 111.222.333.444 - - 05/Jul/2022:00:34:34 +0000 "POST / api/apim/authenticate/login HTTP/1.1" 200 115 1.043
And the timestamp is matching the audit log on step 1, then the IP in this message (111.222.333.444 in above message) is the client IP.